From owner-freebsd-security  Fri Nov 23  5:57: 5 2001
Delivered-To: freebsd-security@freebsd.org
Received: from pps.de (mail.pps.de [217.13.200.134])
	by hub.freebsd.org (Postfix) with ESMTP id 63D4437B405
	for <freebsd-security@freebsd.org>; Fri, 23 Nov 2001 05:56:59 -0800 (PST)
Received: from jung7.pps.de (jung7.pps.de [192.9.200.17])
	by pps.de (8.9.3/8.9.3) with ESMTP id PAA96355
	for <freebsd-security@freebsd.org>; Fri, 23 Nov 2001 15:01:09 +0100 (CET)
	(envelope-from petros@pps.de)
Received: from aprilsonne.pps.de by jung7.pps.de (8.9.3+Sun/ZRZ-Sol2)
	id OAA02769; Fri, 23 Nov 2001 14:56:51 +0100 (MET)
Received: from aprilsonne by aprilsonne.pps.de (8.9.1b+Sun/ZRZ-Sol2)
	id OAA07362; Fri, 23 Nov 2001 14:56:51 +0100 (MET)
Message-Id: <200111231356.OAA07362@aprilsonne.pps.de>
Date: Fri, 23 Nov 2001 14:56:51 +0100 (MET)
From: Peter Ross <petros@pps.de>
Reply-To: Peter Ross <petros@pps.de>
Subject: Re: natd: failed to write packet back
To: freebsd-security@freebsd.org
MIME-Version: 1.0
Content-Type: TEXT/plain; charset=us-ascii
Content-MD5: GJDOihcp/3GX57MvSDK9iA==
X-Mailer: dtmail 1.3.0 @(#)CDE Version 1.3.5 SunOS 5.7 sun4u sparc 
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Hi,

> The aliased packed is matching an ipfw deny rule that comes after the 
> divert rule

There isn't a matching message in /var/log/security.. All my deny rules are 
also log rules (including the last "deny log all from any to any") and it 
seems to work: there are entries caused by (other) denied packets.

Peter Ross


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message